NetSuite, in depth
Technical guides on the things that break NetSuite accounts, from the team that built the SuiteRX health check. No fluff.
June 24, 2026
NetSuite bundle code vs. your own customizations: what a health check should ignore
Most scripts in a NetSuite account are vendor bundle code you cannot change. Why a good audit separates them out and scans only what is yours.
ReadJuly 1, 2026
NetSuite token-based authentication: the security risk nobody rotates
How NetSuite TBA tokens become standing security risks, why admin-scoped tokens bypass two-factor, and how to audit every token in your account.
ReadJune 30, 2026
How to find orphaned SuiteScripts in NetSuite
Orphaned scripts with no owner run silently in most NetSuite accounts. How they get there, why they are a risk, and how to find every one.
ReadJuly 2, 2026
The NetSuite security audit checklist (what an auditor actually asks about)
A practical NetSuite security audit checklist: access tokens, roles, SSO, saved searches, and the settings an auditor checks first.
ReadJune 27, 2026
NetSuite governance limits: why scripts fail under load
What NetSuite governance limits are, how scripts blow through them on high-volume records, and how to find the ones about to fail.
ReadJune 20, 2026
Why editing NetSuite production directly fails a SOX audit
Direct production configuration is the core NetSuite change-management gap. What SOX ITGC expects, and how to prove your changes are controlled.
ReadJuly 3, 2026
NetSuite Segregation of Duties: the role conflicts that fail a SOX audit
The Segregation of Duties conflicts hiding in most NetSuite accounts, why auditors ask about them first, and how to find them fast.
Read